CVE-2023-35091

Cross-Site Request Forgery CSRF vulnerability in StoreApps Stock Manager for WooCommerce plugin = 2.10.0 versions...

CVE-2023-35091

Cross-Site Request Forgery CSRF vulnerability in StoreApps Stock Manager for WooCommerce plugin = 2.10.0 versions...

CVE-2023-35091

The CVE-2023-35091 entry describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress WooCommerce Stock Manager (StoreApps) plugin, affecting versions

CVE-2022-36284

Authenticated IDOR vulnerability in StoreApps Affiliate For WooCommerce premium plugin = 4.7.0 at WordPress allows an attacker to change the PayPal email. WooCommerce PayPal Payments plugin free should be at least installed to get the extra input field on the user profile page...

CVE-2022-36284

Authenticated IDOR vulnerability in StoreApps Affiliate For WooCommerce premium plugin = 4.7.0 at WordPress allows an attacker to change the PayPal email. WooCommerce PayPal Payments plugin free should be at least installed to get the extra input field on the user profile page...

CVE-2022-25649

Multiple Improper Access Control vulnerabilities in StoreApps Affiliate For WooCommerce premium plugin = 4.7.0 at WordPress...

CVE-2022-25649

Multiple Improper Access Control vulnerabilities in StoreApps Affiliate For WooCommerce premium plugin = 4.7.0 at WordPress...

Design/Logic Flaw

Authenticated IDOR vulnerability in StoreApps Affiliate For WooCommerce premium plugin = 4.7.0 at WordPress allows an attacker to change the PayPal email. WooCommerce PayPal Payments plugin free should be at least installed to get the extra input field on the user profile page...

Improper access control

Multiple Improper Access Control vulnerabilities in StoreApps Affiliate For WooCommerce premium plugin = 4.7.0 at WordPress...

CVE-2022-36284

CVE-2022-36284 involves the StoreApps Affiliate For WooCommerce premium plugin (

CVE-2022-25649 WordPress Affiliate For WooCommerce premium plugin <= 4.7.0 - Multiple Improper Access Control vulnerabilities

Multiple Improper Access Control vulnerabilities in StoreApps Affiliate For WooCommerce premium plugin = 4.7.0 at WordPress...

CVE-2022-25649

CVE-2022-25649 affects the StoreApps Affiliate For WooCommerce premium plugin (WordPress) with multiple improper access control vulnerabilities in versions prior to 4.7.0. Exploitation could allow unauthorized actions by users with low privileges (e.g., subscribers). Remediation: upgrade to 4.7.0...

PT-2022-17434 · Woocommerce · Storeapps Affiliate For Woocommerce

Name of the Vulnerable Software and Affected Versions: StoreApps Affiliate For WooCommerce premium plugin versions prior to 4.7.0 Description: The issue concerns Multiple Improper Access Control vulnerabilities. Recommendations: For versions prior to 4.7.0, update to version 4.7.0 or later to...

PT-2022-23290 · Storeapps · Storeapps Affiliate For Woocommerce

Name of the Vulnerable Software and Affected Versions: StoreApps Affiliate For WooCommerce premium plugin versions = 4.7.0 Description: The issue allows an attacker to change the PayPal email due to an authenticated IDOR vulnerability. This can be exploited when the WooCommerce PayPal Payments...

WordPress plugin StoreApps Affiliate For WooCommerce premium 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2022-25649

Multiple Improper Access Control vulnerabilities in StoreApps Affiliate For WooCommerce premium plugin = 4.7.0 at WordPress...